msyds/sydnix
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(fruitbook): init

Browse Source
This commit is contained in:
Madeleine Sydney Slaga
2025-08-05 21:56:48 +00:00
committed by Madeleine Sydney Ślaga
parent eea4d34206
commit a1bb1ab419
9 changed files with 312 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

161
hosts/fruitbook/configuration.nix Normal file
View File

@@ -0,0 +1,161 @@
{ config, pkgs, lib, disko, sydnix-cli, ... }:
{
imports = [
./hardware.nix
./filesystems.nix
];
sydnix = {
filesystemType = "btrfs";
wifi.enable = true;
stylix.enable = true;
niri.enable = true;
users.users = [
"crumb"
];
impermanence = {
enable = true;
directories = [
# "Warning: Neither /var/lib/nixos nor any of its parents are persisted.
# This means all users/groups without specified uids/gids will have them
# reassigned on reboot."
"/var/lib/nixos"
# We don't want to have different ssh keys on reboot, because ssh keys
# are expected to consistently identify machines... I think. I mostly
# just think it's annoying to edit ~/.ssh/known_hosts all the time.
"/etc/ssh"
];
rollback = {
enable = true;
device = "/dev/disk/by-id/ata-APPLE_SSD_SM0512G_S29ANYAH526520-part5";
subvolume = "rootfs";
};
};
};
services.displayManager.sddm = {
enable = true;
wayland.enable = true;
autoNumlock = true;
};
services.libinput = {
enable = true;
# Disable mouse acceleration.
mouse.accelProfile = "flat";
# Sensitivity.
mouse.accelSpeed = "-0.5";
};
services.pipewire = {
enable = true;
alsa.enable = true;
alsa.support32Bit = true;
# Pulseaudio compatibility layer.
pulse.enable = true;
wireplumber.enable = true;
};
# Ensure pipewire processes get realtime priority.
security.rtkit.enable = true;
# services.xserver.desktopManager.plasma5.enable = true;
# Disable systemd-sleep. Let KDE or whatever dim the screen without
# suspending the computer.
systemd.sleep.extraConfig = ''
AllowSuspend=no
AllowHibernation=no
AllowHybridSleep=no
AllowSuspendThenHibernate=no
'';
boot.loader = {
grub.enable = false;
systemd-boot.enable = true;
efi.canTouchEfiVariables = false;
};
time.timeZone = "America/Denver";
i18n.defaultLocale = "en_US.UTF-8";
console = {
useXkbConfig = true; # Use xkb.options in tty.
};
hardware.nvidia.open = false;
services.xserver = {
# enable = true;
xkb = {
layout = "us";
options = "ctrl:swapcaps,compose:menu";
};
};
# Usually we try to delegate declarations of globally-available packages to
# separate modules. These are some exceptional essentials.
environment.systemPackages = [
pkgs.neovim
pkgs.git
sydnix-cli.packages.x86_64-linux.default
];
services.openssh = {
enable = true;
settings.PermitRootLogin = "yes";
settings.X11Forwarding = true;
};
# TODO: Move to defaults.
users.mutableUsers = false;
nix = {
settings = {
allow-import-from-derivation = true;
trusted-users = [
"@wheel"
];
substituters = [
"https://cache.deertopia.net"
"https://nix-community.cachix.org"
"https://cache.nixos.org"
"https://cache.iog.io"
];
trusted-public-keys = [
(builtins.readFile ../../public-keys/deertopia-cache.pub.pem)
"nix-community.cachix.org-1:mB9FSh9qf2dCimDSUo8Zy7bkq5CX+/rkCWyvRCYg3Fs="
"hydra.iohk.io:f/Ea+s+dFdN+3Y/G+FDgSq+a5NEWhJGzdjvKNGv0/EQ="
];
};
};
security.pki.certificateFiles = [
../../public-keys/lolc.at.crt
];
# This option defines the first version of NixOS you have installed on this
# particular machine, and is used to maintain compatibility with application
# data (e.g. databases) created on older NixOS versions.
#
# Most users should NEVER change this value after the initial install, for any
# reason, even if you've upgraded your system to a new NixOS release.
#
# This value does NOT affect the Nixpkgs version your packages and OS are
# pulled from, so changing it will NOT upgrade your system - see
# https://nixos.org/manual/nixos/stable/#sec-upgrading for how to actually do
# that.
#
# This value being lower than the current NixOS release does NOT mean your
# system is out of date, out of support, or vulnerable.
#
# Do NOT change this value unless you have manually inspected all the changes
# it would make to your configuration, and migrated your data accordingly.
#
# For more information, see `man configuration.nix` or
# https://nixos.org/manual/nixos/stable/options#opt-system.stateVersion .
system.stateVersion = "25.05"; # Did you read the comment?
}

73
hosts/fruitbook/disks.nix Executable file
View File

@@ -0,0 +1,73 @@
# sudo nix --experimental-features "nix-command flakes" run github:nix-community/disko/latest -- --mode disko /persist/dots/hosts/nixos-testbed/disko-config.nix
# time sudo nixos-install --flake /persist/dots#nixos-testbed
{ lib, ... }:
{
# imports = [ disko.nixosModules.disko ];
boot.initrd.supportedFilesystems.btrfs = true;
boot.supportedFilesystems.btrfs = true;
# From Impermanence's README: "Important note: Make sure your persistent
# volumes are marked with neededForBoot, otherwise you will run into
# problems."
fileSystems."/persist".neededForBoot = true;
disko.devices = {
disk = {
bootroot = {
type = "disk";
device = "/dev/disk/by-id/ata-APPLE_SSD_SM0512G_S29ANYAH526520-part4";
content = {
type = "gpt";
partitions = {
ESP = {
size = "512M";
type = "EF00";
content = {
type = "filesystem";
format = "vfat";
mountpoint = "/boot";
mountOptions = [ "umask=0077" ];
};
};
root = {
size = "100%";
content = {
type = "btrfs";
mountpoint = "/partition-root";
swap.swapfile.size = "4G";
# Override existing partitions.
extraArgs = [ "-f" ];
# Subvolumes must set a mountpoint in order to be mounted,
# *unless their parent is mounted*.
subvolumes = {
# Subvolume names do not necessarily correspond to
# mountpoints, despite the structural resemblance to a file
# path.
"/rootfs" = {
mountpoint = "/";
};
"/nix" = {
mountpoint = "/nix";
};
"/persist" = {
mountpoint = "/persist";
};
"/persist/home" = {
mountpoint = "/persist/home";
};
"/swap" = {
mountpoint = "/.swapvol";
swap.swapfile.size = "4G";
};
};
};
};
};
};
};
};
};
}

20
hosts/fruitbook/filesystems.nix Normal file
View File

@@ -0,0 +1,20 @@
{ ... }:
let
device = "/dev/disk/by-id/ata-APPLE_SSD_SM0512G_S29ANYAH526520-part5";
subvol = subvol-name: {
inherit device;
fsType = "btrfs";
options = [ "subvol=${subvol-name}" ];
};
in {
fileSystems = {
"/" = subvol "rootfs";
"/persist" = subvol "persist" // { neededForBoot = true; };
"/persist/home" = subvol "persist/home";
"/nix" = subvol "nix";
"/boot" = {
device = "/dev/disk/by-id/ata-APPLE_SSD_SM0512G_S29ANYAH526520-part3";
};
};
}

28
hosts/fruitbook/hardware.nix Executable file
View File

@@ -0,0 +1,28 @@
# Do not modify this file! It was generated by nixos-generate-config
# and may be overwritten by future invocations. Please make changes
# to /etc/nixos/configuration.nix instead.
{ config, lib, pkgs, modulesPath, ... }:
{
imports =
[ (modulesPath + "/hardware/network/broadcom-43xx.nix")
(modulesPath + "/installer/scan/not-detected.nix")
];
boot.initrd.availableKernelModules = [ "xhci_pci" "ahci" "usbhid" "usb_storage" "sd_mod" ];
boot.initrd.kernelModules = [ ];
boot.kernelModules = [ "kvm-intel" ];
boot.extraModulePackages = [ ];
swapDevices = [ ];
# Enables DHCP on each ethernet and wireless interface. In case of scripted networking
# (the default) this is the recommended approach. When using systemd-networkd it's
# still possible to use this option, but it's recommended to use it in conjunction
# with explicit per-interface declarations with `networking.interfaces.<interface>.useDHCP`.
networking.useDHCP = lib.mkDefault true;
# networking.interfaces.wlp3s0.useDHCP = lib.mkDefault true;
nixpkgs.hostPlatform = lib.mkDefault "x86_64-linux";
hardware.cpu.intel.updateMicrocode = lib.mkDefault config.hardware.enableRedistributableFirmware;
}

1
hosts/fruitbook/system.nix Executable file
View File

@@ -0,0 +1 @@
"x86_64-linux"